Okta

Procedures for configuring Okta SAML Authentication integration with PlexTrac

Follow the steps below:

  1. Login into your Okta account and go to Applications in the admin panel.

2. Click Add Application. Then click Create New App in the upper right corner.

A screenshot of a social media post

Description automatically generated

3. Select “Web” for Platform, and SAML 2.0 for Sign On Method and click "Create"

A screenshot of a cell phone

Description automatically generated

4. Fill in the name of your application and click "Next"

A screenshot of a cell phone

Description automatically generated

5. Fill in the single sign on url with {{your_domain}}/api/v2/saml/authenticate.

For the Audience URI put {{your_domain}}.

Choose EmailAddress as the Name ID format

Make sure to select "Use this for Recipient URL and Destination URL"

Set Application Username to "Okta Username"

Set Update application username on to "Create and Update"

6. Click “Show Advanced Settings”. Make sure Signature and Digest Algorithm are SHA256.

7. Scroll all the way to the bottom and click Next, select "I'm an Okta customer adding an internal app" and click "Finish".

8. Click View Setup Instructions.

9. Copy the information (including the full X 509 cert) on the page and save for the setup in PlexTrac.

10. Go back to your applications and click on your newly created app

11. Click the green "Assign" button to assign users or user groups to the new app via the assignments tab

12. Login to PlexTrac and navigate to "Account Admin", Click the "Authentication" tab on the left, and then select the SAML Providers tab and "Create New SAML Provider".

13. Click Create New SAML Provider, and fill out the form with the information from Okta.

13. Once the form is complete set the slider to "Enabled" and click "Create".

14. Any PlexTrac user can now be allowed to authenticate with the new provider.

A screenshot of a cell phone

Description automatically generated